Route Origin Authorization

$ cd rpki.apnic.net/member_repository/A9119508/00020272ACC211EBABE1955EC4F9AE02/

$ rpki-client -vvf 6C9FD6BAACC311EBA28FAD5FC4F9AE02.roa
File:                     6C9FD6BAACC311EBA28FAD5FC4F9AE02.roa (download)
Hash identifier:          EtR6QkcY9IRGBuYPddb+COcYXV/ikwbbyNJ3SzYyTDE=
Subject key identifier:   F3:B3:C3:D9:96:8E:E1:F6:97:AF:10:D7:F2:72:CD:89:1E:BB:E8:62
Certificate issuer:       /CN=A9119508/serialNumber=1D725C91C0D4722F340088D1374DD2DAF37D8312
Certificate serial:       0421
Authority key identifier: 1D:72:5C:91:C0:D4:72:2F:34:00:88:D1:37:4D:D2:DA:F3:7D:83:12
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HXJckcDUci80AIjRN03S2vN9gxI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9119508/00020272ACC211EBABE1955EC4F9AE02/6C9FD6BAACC311EBA28FAD5FC4F9AE02.roa
ROA valid until:          Dec 01 00:00:00 2023 GMT
asID:                     135386
IP address blocks:
    1: 103.155.110.0/23 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1057 (0x421)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9119508/serialNumber=1D725C91C0D4722F340088D1374DD2DAF37D8312
        Validity
            Not Before: Oct 29 01:51:21 2022 GMT
            Not After : Dec  1 00:00:00 2023 GMT
        Subject: CN=635c8719-016e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:0f:62:7e:5c:84:37:89:5d:93:a6:88:b3:aa:
                    4b:9e:93:56:c3:ba:4b:9c:bb:5c:ee:5e:22:85:e8:
                    cd:f9:95:46:7b:2a:bb:c9:85:7a:2f:cf:43:1e:13:
                    7a:b3:c6:cc:5c:fd:2a:12:99:d1:51:1b:77:4f:59:
                    a7:e2:8c:a9:c8:83:73:59:16:c7:ec:0f:ff:9d:6d:
                    df:91:85:3e:89:1e:cc:02:a8:ff:22:d8:25:90:4c:
                    97:7f:83:bc:6a:43:64:56:13:0f:30:ed:73:8c:17:
                    b9:19:04:7f:33:ec:2f:28:b9:de:28:54:8b:66:85:
                    ce:22:93:ec:43:06:b3:d0:1c:f6:90:ad:ec:99:57:
                    e3:ac:6a:33:c0:07:b9:17:07:22:47:3c:a1:9b:4b:
                    d5:7d:a3:c4:24:57:c3:ad:c2:57:a5:8a:50:c3:08:
                    d4:04:bd:df:33:b0:51:94:64:b4:8b:31:9a:7c:9e:
                    5c:47:e0:d7:e3:43:48:71:ad:33:02:e2:4d:0c:0b:
                    5d:21:a3:f6:55:9c:70:0a:15:44:61:b9:0f:28:09:
                    d3:af:25:a0:74:71:e3:71:60:0c:7d:57:93:ea:bb:
                    bb:91:6a:c6:4f:8d:33:df:f3:41:6a:ba:6e:04:cf:
                    f0:e3:71:fc:2a:96:80:09:f9:74:84:90:41:b0:21:
                    65:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                F3:B3:C3:D9:96:8E:E1:F6:97:AF:10:D7:F2:72:CD:89:1E:BB:E8:62
            X509v3 Authority Key Identifier: 
                keyid:1D:72:5C:91:C0:D4:72:2F:34:00:88:D1:37:4D:D2:DA:F3:7D:83:12

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9119508/00020272ACC211EBABE1955EC4F9AE02/HXJckcDUci80AIjRN03S2vN9gxI.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HXJckcDUci80AIjRN03S2vN9gxI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119508/00020272ACC211EBABE1955EC4F9AE02/6C9FD6BAACC311EBA28FAD5FC4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.155.110.0/23

    Signature Algorithm: sha256WithRSAEncryption
         75:c4:68:e2:74:85:66:1f:8c:84:c7:56:12:33:ae:51:7c:cb:
         52:c6:03:d4:3e:8a:12:5a:7f:39:ea:e1:e3:e3:60:57:51:5b:
         13:5e:0d:84:20:d3:70:05:4c:36:d3:c8:89:ae:e5:18:87:3b:
         15:a1:6a:f0:14:07:07:a8:63:39:0a:e3:9f:4d:56:2a:23:67:
         50:fa:e5:72:f2:ff:2a:48:e4:81:14:d3:88:72:66:a7:07:34:
         02:43:b7:fe:20:87:f9:3f:71:fc:86:4d:83:d5:c4:52:1a:2b:
         09:fa:54:30:2c:59:4a:ba:ce:18:02:4f:e7:a8:63:17:30:9d:
         47:0c:66:b4:52:6f:b1:54:8c:0d:bb:df:50:79:cb:51:4d:4c:
         17:39:5c:11:ea:7f:34:de:fc:0d:f7:62:7e:f7:9c:bd:35:19:
         25:ef:42:17:9f:33:31:62:fa:71:dc:df:51:e7:74:61:7b:36:
         4c:bd:40:ed:5f:f6:ad:ae:1d:0c:bf:2e:5d:7a:7a:f9:23:f0:
         ed:68:f1:f7:26:76:24:3c:c4:ff:39:00:c0:03:b1:20:a7:68:
         38:69:04:cf:6f:f0:ec:01:00:51:57:c1:79:e1:13:1e:61:9b:
         b8:f6:36:ea:d9:08:0d:97:85:fb:2a:09:b7:65:41:93:96:7f:
         f5:62:b7:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 3 17:57:37 2022 by rpki-client.